ChannelCandy can provide SSO (Single Sign On) to your infrastructure. In other words, we can easily interface with your partner management system. This allows your partners to access their mobile app using the same credentials they would to log in to your portal.
How does it work?
Your infrastructure can allow us access in a couple of different models:
Seamless Integration to your Infrastructure Resources
To provide your users with a seamless experience, ensure your authentication specific cookies have an actual expiration date timestamp set; and are not Session-level cookies (i.e., disappear when app/browser closes). Alternatively, provide an authentication token which will be passed in all secure infrastructure links. This allows the user to be automatically authenticated into the secure resource without having to re-enter credentials.
OAUTH based authentication
ChannelCandy is an OAUTH2.0 consumer, if your infrastructure can act as an OAUTH 2.0 Provider, this is the easiest and most secure solution.
SAML based authentication
ChannelCandy also support SAML 1.0 and 2.0 based authorization. This is also a standards based, highly secure solution.
URL based authentication
In this scenario you provide us with a URL which we will access to determine if a partner is authorized for access and optionally, what level of access the user should have.
The return from the web call can either be in JSON or XML format. It should at a minimum indicate the success of the authentication call and can optionally provide us other information. Here is a simple JSON example:
partner_name: 'My Partner Inc.',
groups: ['Cisco Reseller','Education']
This example provides a few different pieces of information to make the users experience on the app better:
- Groups - Describe the partner groups or levels the user is part of
- Demographics - First Name, Last Name etc.
LDAP based authentication
We can also use LDAP to access your partner management infrastructure. Each LDAP implementation is different, so if this makes sense for your organization, we can provide a custom solution.